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TECHNIQUE FOR ACHIEVING CONNECTIVITY BETWEEN 
TELECOMMUNICATION STATIONS 

Cross-Reference to Related Applications 

[0001] This application claims the benefit of United States Provisional Patent 
Application Serial Number: 60/453,612, entitled "Technique for Achieving Connectivity 
between Communication Stations/' filed on March 11, 2003 (Attorney Docket: 680-060us), 
which is incorporated by reference. 

Field of the Invention 

[0002] The present invention relates to telecommunications in general, and, more 
particularly, to LANs (Local Area Networks). 

Backcround off the Invention 

[0003] Figure 1 depicts a schematic diagram of wireless local area network 100 fn the 
prior art. Wireless local area network 100 comprises access point 101, telecommunication 
stations {i.e., "stations") 102-1 through 102-/C, wherein K '\sa positive integer, and stations 
103-1 through 103-Z., wherein Z. is a positive integer. Stations 102-1 through 102-/Cand 
stations 103-1 through 103-Z. are typically used by host computers to allow communications 
between host computers or between host computers and other systems (e.g., printer 
servers, email servers, file servers, etc.). Wireless local area network 100 operates in 
accordance with the IEEE 802.11 set of protocols. 

[0004] Together, stations 102-1 through 102-/C and access point 101 form an 
''infrastructure network." Stations 102-1 through 102-/C communicate with access point 101 
while in what is called an ''infrastructure mode." In fact, while operating in infrastructure 
mode, stations 102-1 through 102-/C can communicate with each other only through access 
point 101. Access point 101 essentially acts as a communications coordinator for stations 
102-1 through 102-/C. Furthermore, access point 101 acts as a bridge to an extended 
infrastructure other than wireless local area network 100 for stations 102-1 through 102-K. 

[0005] Stations 103-1 through 103-i communicate directly with each other and do 
not communicate with access point 101. They form what is called an "independent 
network." 
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Summaiv f the Invent! n 

[0006] Wireless local area networking capability (e.g., IEEE 802.11, etc) is being 
built into personal digital assistant (PDA) products. This introduces a new user scenario, 
wherein the user already has a primary computer (e.g., notebook, a desktop, etc) with, for 
example, IEEE 802.11 wireless local area networking capability. In this user scenario, the 
user wishes to connect to a secondary computer {i.e., the personal digital assistant, or 
equivalent), in addition to an extended infrastructure through one or more access points. 

[0007] The normal infrastructure network connection scenario supported by IEEE 
802.11, as well as other protocols, is that all stations associate with access points. A user 
adding a station (e.g., one built into the personal digital assistant, etc.) to a wireless 
network would have to configure the station to connect to an access point, regardless of the 
station's size, function relative to other stations, power output, etc. This has at least two 
drawbacks: 

1. The access point is typically located at a distance. If the station needs to 
communicate with the access point directly, it will require more power, which can 
be prohibitive for low-power units, such as personal digital assistants. 

2. Wireless connections to access points are increasingly becoming implemented 
with security mechanisms that are often tied to the network authentication of a 
user's primary computer. Extending these security and authentication 
mechanisms to the secondary computer adds to cost, complexity, and increases 
the burden of information technology (IT) management. 

[0008] The present invention enables a secure, point-to-point wireless connection 
between a secondary computer (e.g., a PDA, etc.) and a primary computer (e.g., a 
notebook, a desktop, etc.), wherein the primary computer is associated with a wireless 
infrastructure that, in turn, possibly constitutes a larger, extended network. The present 
invention enables a secondary computer to communicate either with the associated primary 
computer or with an extended network indirectly through an access point. 

[0009] The secondary computer gets a private internet protocol address from the 
primar/ computer, rather than from the overall network infrastructure. This simplifies 
network administration and enables use of the secondary computer in situations where the 
internet protocol addresses are limited or statically assigned. In addition, address 
management and routing performed at the primary computer enables the connection of the 
secondary computer to the primary computer in situations where use of internet protocol 
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addresses is tied to billing {e.g., access in a hotel or airport, etc), without incurring an 
additional charge for using the secondary computer, 

[0010] All traffic from the secondary computer is seen by the extended network as 
originating from the primary computer, This enables the security and authentication 
mechanisms of the primary computer to extend to include the secondary computer, without 
having to implement all the security and authentication mechanisms on the secondary 
computer. 

[0011] An illustrative embodiment of the present invention comprises: receiving a 
first frame from a shared-communications channel wherein the first frame comprises: (1) a 
first basic service set identifier; (2) a first internet protocol address; and (3) a second 
internet protocol address; passing the first frame based on the first basic service set 
identifier; tagging the first frame with a tag that represents the first basic service set 
identifier; and transmitting a second frame into the shared-communications channel 
wherein the second frame comprises: (1) a second basic service set identifier that is 
different from the first basic service set identifier; (2) a third internet protocol address that 
is different from the first internet protocol address; and (3) the second internet protocol 
address. 

Brief Description of the Drawings 

[0012] Figure 1 depicts a schematic diagram of wireless local area network 100 in the 
prior art. 

[0013] Figure 2 depicts a schematic diagram of a portion of local area network 200 in 
accordance with the illustrative embodiment of the present invention. 

[0014] Figure 3 depicts host computer 301 and primary station 202-/ in accordance 
with the illustrative embodiment of the present invention. 

[0015] Figure 4 depicts a block diagram of the salient components of primary station 
202-/ in accordance with the illustrative embodiment of the present invention. 

[0016] Figure 5 depicts a flowchart of the illustrative embodiment of the present 
invention. 

[0017] Figure 6 depicts a schematic diagram of frame 600 in accordance with the 
illustrative embodiment of the present invention. 

[0018] Figure 7 depicts a schematic diagram of a frame body 602. 

[0019] Figure 8 depicts a message flow diagram in accordance with the illustrative 
embodiment of the present invention. 
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Detailed Descripti n 

[0020] Figure 2 depicts a schematic diagram of a portion of local area network 200 in 
accordance with the illustrative embodiment of the present invention. Local area network " 

200 can be a wireless local network, operating in accordance with an air interface protocol 
such as IEEE 802.11. Local area network 200 comprises access point 201, primary stations 
202-/, for /=1 to M, and secondary stations 203-/-J, for /=1 to M and 7=1 to N. M and N are 
positive integers. A scenario corresponding to values for M and N that are equal to 2 is 
depicted in the illustrative embodiment, although M and N can assume other values and 
there can be a different number of secondary stations 203-i-j associated with each primary 
station 202-/. 

[0021] Access point 201 communicates directly with primary stations 202-1 through 
202-Af. Primary station 202-/ communicates directly with secondary station 203-i-j, In 
accordance with the illustrative embodiment of the present invention, access point 201 can 
communicate with secondary station 203-/-7 through primary station 202-/. Access point 

201 can also serve as a bridge to the rest of an extended network, such as an extended 
service set or another network not depicted in Figure 2. It will be clear to those skilled in 
the art how to make and use access point 201. 

[0022] Primary station 202-1 and primary station 202-Mcan communicate with each 
other indirectly through access point 201 because access point 201 and primary stations 
202-1 through 202-Af are associated with a specific grouping referred to as an 
''infrastructure basic service set." Frames that are exchanged between primary station 202-/ 
and access point 201 comprise a basic service set identifier that identifies the specific 
infrastructure basic service set in well-known fashion. It will be clear to those skilled in the 
art how to create an infrastructure basic service set. 

[0023] Primary station 202-/ and secondary stations 203-/-7, for a given value of/, 
are associated with a specific grouping referred to as an ''independent basic service set." 
Frames that are exchanged between primary station 202-/ and secondary stations 203-/-7, 
for a given value of /, comprise a basic service set identifier that identifies the specific 
independent basic service set in well-known fashion. It will be clear to those skilled in the 
art how to create an independent basic service set. 

[0024] Figure 3 depicts a block diagram of the salient components of host computer 
301 and primary station 202-/ in accordance with the illustrative embodiment of the present 
invention. Host computer 301, the ''primary computer" in the illustrative embodiment, is 
capable of generating data messages and transmitting those data messages to primary 
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station 202-/. Host computer 301 is also capable of receiving data messages from primary 
station 202-/ and of processing and using the data contained within those data messages. 
Host computer 301 can be, for example, a desktop or a laptop computer. It will be clear to 
those skilled in the art, after reading this specification, how to make and use host computer 
301. 

[0025] Primary station 202-/ is capable of receiving data messages from host 
computer 301 and transmitting over a shared communications channel data frames 
comprising the data received from host computer 301. Primary station 202-/ is also capable 
of receiving data frames from the shared communications channel and sending to host 
computer 301 data messages comprising data from the data frames. It will be clear to 
those skilled in the art, after reading this specification, how to make and use primary station 
202-/. 

[0026] Secondary station 203-/-7 is capable of receiving data messages from an 
associated application (/.e., running on a ''secondary computer") and transmitting over the 
shared communications channel data frames comprising the data received from the 
associated application. The associated application can be, for example, a calendar program 
running on a personal digital assistant (PDA) or another low power device, possibly 
belonging to the user of host computer 301. Secondary station 203-/\7 Is also capable of 
receiving data frames from the shared communications channel and sending messages 
comprising data from the data frames to an associated application. It will be clear to those 
skilled in the art how to make and use secondary station 203-/-y. 

[0027] The connection between secondary station 203-i-j and primary station 202-/ 
can be secured without requiring a complex user setup. For example, as part of establishing 
link layer security over the local connection, the user of a primary computer and a 
secondary computer served by primary station 202-/ and secondary station 203-hj, 
respectively, can select a key to be used for link encryption and can enter the key into the 
primary computer and the secondary computer. The actual encryption is then performed in 
well-known fashion. Key distribution and maintenance are relatively straightforward, since 
typically a single individual uses a given primary station and the associated secondary 
station or stations, requiring that only one individual, or a limited number of individuals, has 
possession of a given key. 

[0028] Figure 4 depicts a block diagram of the salient components of primary station 
202-/ in accordance with the illustrative embodiment of the present invention. Primary 
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Station 202-/ comprises receiver 401, processor 402, memory 403, and transmitter 404, 
interconnected as shown. 

[0029] Receiver 401 is a circuit that is capable of receiving frames from the shared 
communications channel, in well-known fashion, and of forwarding them to processor 402. 
It will be clear to those skilled in the art how to make and use receiver 401. 

[0030] Processor 402 is a general-purpose processor that is capable of performing 
the tasks described below and with respect to Figures 5 through 8. It will be clear to those 
skilled in the art, after reading this specification, how to make and use processor 402. 

[0031] Memory 403 is capable of storing programs and data used by processor 402. 
It will be clear to those skilled in the art how to make and use memory 403. 

[0032] Transmitter 404 is a circuit that is capable of receiving frames from processor 
402, in well-known fashion, and of transmitting them on the shared communications 
channel. It will be clear to those skilled in the art how to make and use transmitter 404. 

[0033] Figure 5 depicts a flowchart of the salient tasks performed by the illustrative 
embodiment of the present invention. It will be clear to those skilled in the art which tasks 
depicted in Figure 5 can be performed simultaneously or in a different order than that 
depicted. 

[0034] At task 501, primary station 202-/ receives a first frame from the shared- 
communications channel. The first frame comprises a first basic service set identifier and a 
pair of internet protocol addresses {i.e., source and destination addresses), and can also 
comprise a user data block. A user data block comprises data exchanged between 
applications {e.g., calendar data stored in a personal digital assistant versus master 
calendar data stored in a database server, etc.). 

[0035] At task 502, primary station 202-/ passes the frame along for additional 
processing after checking the value of the basic service set identifier. In some 
embodiments, values that constitute a pass condition include a value corresponding to the 
independent basic service set and a value corresponding to the infrastructure basic service 
set. 

[0036] At task 503, primary station 202-/ tags the contents of the first frame with a 
tag that is representative of the basic service set identifier. In some embodiments, tagging 
is performed at the medium access control (MAC) service access point (SAP) Tagging is 
necessary when the frame header has been stripped away by the medium access control 
function of primary station 202-/, leaving only the frame body. In some embodiments, 
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tagging is not needed. It will be clear to those skilled in the art to determine when tagging 
is needed. 

[0037] At task 504, primary station 202-/ translates one of the internet protocol 
addresses In the received frame into a different internet protocol address. If primary station 
202-/ receives the frame from secondary station lOS-i-j, the source internet protocol 
address gets translated. If primary station 202-/ receives the frame from access point 201, 
the destination internet protocol address gets translated. This can be accomplished through 
a technique such as network address translation (NAT) in well-known fashion. In this way, 
access point 201 and extended network elements '"see" primary station 202-/, even if the 
exchange of frames involves secondary station 203-/-J as one of the endpoints. 

[0038] In some embodiments, host computer 301, instead of primary station 202-/, 
translates the internet protocol address. Host computer 301 uses the tag generated at task 
503 to determine if the frame has been received from the independent basic service set or 
from the infrastructure basic service set. 

[0039] At task 505, primary station 202-/ transmits a second frame into the shared- 
communications channel. The second frame comprises a second basic service set identifier 
and the translated internet protocol address, and can comprise the same user data block as 
that which was received earlier. 

[0040] Figure 6 depicts a block diagram of frame 600 in accordance with the 
illustrative embodiment of the present invention. Frame 600 comprises frame header 601, 
frame body 602, and frame check sequence 603, in well-known fashion. Frame header 601 
comprises the basic service set identifier. 

[0041] Figure 7 depicts a block diagram of frame body 602. The frame body 
comprises header 701 and data 702, in well-known fashion. Header 701 comprises an 
internet protocol address of the source entity and an internet protocol address of the 
destination entity. Data 702 comprises a user data block. 

[0042] Figure 8 depicts a message flow diagram in accordance with the illustrative 
embodiment of the present invention. For example, secondary station 203-1-2 (e.g., the 
station serving a personal digital assistant, etc.) wishes to retrieve information (e.g., an 
updated phone number, etc.) from a server in the extended network, depicted as server 
810, that is accessible only through access point 201. Secondary station 203-1-2 forms 
frame 801 comprising an application request that server 810 can understand. Secondary 
station 203-1-2 then transmits frame 801 into the shared-communications channel to 
primary station 202-1. Frame 801 comprises the basic service set identifier that identifies 
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the independent basic service set with which primary station 202-1 and secondary station 
203-1-2 are associated, the internet protocol address of secondary station 203-1-2 as the 
source address, the internet protocol address of server 810 as the destination address, and 
the application request as part of a user data block. The source internet protocol address 
was previously provided to secondary station 203-1-2 by primary station 202-1 in well- 
known fashion (e.g., through dynamic host configuration protocol [DHCP], etc.). 

[0043] Primary station 202-1 forms frame 802 comprising the same application 
request that constituted the frame body In frame 801. Primary station 202-1 then transmits 
frame 802 into the shared-communications channel to access point 201. Frame 802 
comprises the basic service set identifier that identifies the infrastructure basic service set 
with which primary station 202-1 and access point 201 are associated; the internet protocol 
address of primary station 202-1 as the source address, the source address having been 
translated by primary station 202-1; the internet protocol address of server 810 as the 
destination address; and the application request. Primary station 202-1 essentially 
performs a routing function. 

[0044] Access point 201 then forwards the application request to server 810 via 
message 803 in well-known fashion. Server 810 subsequently transmits an application 
response to access point 201 via message 804 in well-known fashion. 

[0045] Access point 201 forms frame 805 comprising the application response. 
Access point 201 then transmits frame 805 into the shared-communications channel to 
primary station 202-1. Frame 805 comprises the basic service set identifier that identifies 
the infrastructure basic service set with which primary station 202-1 and access point 201 
are associated, the internet protocol address of primary station 202-1 as the destination 
address, and the application response as part of a user data block. 

[0046] Primary station 202-1 forms frame 806 comprising the application response. 
Primary station 202-1 then transmits frame 806 into the shared-communications channel to 
secondary station 203-1-2. Frame 806 comprises the basic service set identifier that 
identifies the independent basic service set with which primary station 202-1 and secondary 
station 203-1-2 are associated; the internet protocol address of server 810 as the source 
address; the internet protocol address of secondary station 203-1-2 as the destination 
address, the destination address having been translated by primary station 202-1; and the 
application response. Primary station 202-1 essentially performs a routing function. 

[0047] It is to be understood that the above-described embodiments are merely 
illustrative of the present invention and that many variations of the above-described 
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